CVE-2024-21374

Summary

CVE-2024-21374 is a newly discovered information disclosure vulnerability affecting Microsoft Teams for Android. This issue allows an attacker to obtain sensitive information from affected devices through a specially crafted link. Successful exploitation could result in the leakage of chat messages, file contents, and other confidential data. Microsoft has acknowledged the issue and is working on a patch to address the vulnerability. Until then, users are advised to exercise caution when opening links in the Microsoft Teams Android app and keep their applications updated.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.